EnvironmentCredential Class
A credential configured by environment variables.
This credential is capable of authenticating as a service principal using a client secret or a certificate, or as a user with a username and password. Configuration is attempted in this order, using these environment variables:
Service principal with secret:
AZURE_TENANT_ID: ID of the service principal's tenant. Also called its 'directory' ID.
AZURE_CLIENT_ID: the service principal's client ID
AZURE_CLIENT_SECRET: one of the service principal's client secrets
AZURE_AUTHORITY_HOST: authority of an Azure Active Directory endpoint, for example "login.microsoftonline.com", the authority for Azure Public Cloud, which is the default when no value is given.
Service principal with certificate:
AZURE_TENANT_ID: ID of the service principal's tenant. Also called its 'directory' ID.
AZURE_CLIENT_ID: the service principal's client ID
AZURE_CLIENT_CERTIFICATE_PATH: path to a PEM or PKCS12 certificate file including the private key. The certificate must not be password-protected.
AZURE_AUTHORITY_HOST: authority of an Azure Active Directory endpoint, for example "login.microsoftonline.com", the authority for Azure Public Cloud, which is the default when no value is given.
- Inheritance
-
azure.identity.aio._internal.AsyncContextManagerEnvironmentCredential
Constructor
EnvironmentCredential(**kwargs: Any)
Methods
| close |
Close the credential's transport session. |
| get_token |
Asynchronously request an access token for scopes. This method is called automatically by Azure SDK clients. |
close
Close the credential's transport session.
async close()
get_token
Asynchronously request an access token for scopes.
This method is called automatically by Azure SDK clients.
async get_token(*scopes: str, **kwargs: Any) -> AccessToken
Parameters
- tenant_id
- str
optional tenant to include in the token request.
Return type
Exceptions
environment variable configuration is incomplete
Feedback
Submit and view feedback for